Extended Validation SSL Certificates - Support for Extended Validation Certificates from VeriSign, Inc.

You Are Here: US Home > Support > SSL Certificates Support > Extended Validation SSL Certificates

Extended Validation SSL Certificates

Extended Validation (EV) SSL Certificates give high security Web browsers information to clearly identify a Web site’s organizational identity. For example, if you use Microsoft Internet Explorer 7 to access a Web site secured with an SSL Certificate that meets the Extended Validation Standard, Internet Explorer 7 will cause the address bar to turn green. A display next to the green address bar will toggle between the organization name in the certificate and the Certificate Authority (VeriSign, for example). Older browsers will display Extended Validation SSL Certificates with the same security symbols as existing SSL Certificates.

Step-by-Step

The process of obtaining a VeriSign Extended Validation (EV) SSL Certificate is as follows.

For a printable diagram of the Extended Validation process flow, click here. (PDF: 24KB)

SSL Certificates

  1. Generate a CSR and private key on your Web server.
  2. Complete the enrollment process on the VeriSign Web site.
  3. We will authenticate and validate your order as required by established EV guidelines. For details regarding this process and the requirements, see our Authentication and Verification Guide.
  4. Once the certificate has been issued, the certificate will be sent via email with instructions for installation.

Important: EV SSL Certificates require the installation of the Primary Extended Validation Intermediate CA and Secondary Extended Validation Intermediate CA that corresponds to the certificate you purchased.

Managed PKI for SSL

  1. Purchase Extended Validation units either through your account representative or through the “Purchase additional administrative and certificate units” option in the Managed PKI for SSL Control Center. When you purchase EV SSL units for the first time, VeriSign authenticates your organization based on EV standards. For details regarding this process and the requirements, see our Authentication and Verification Guide.
  2. VeriSign will deposit the requested EV SSL units into your account following successful authentication and verification.
  3. Select the domains that you would like to designate as EV domains in the Control Center. These domains are also verified for EV authentication standards.
  4. Generate a CSR and private key on your Web server.
  5. Submit your CSR to the Managed PKI for SSL administrator using the lifecycle pages.
  6. Your Managed PKI for SSL administrator will validate and process the request.
  7. On approval, VeriSign will issue the Certificate via email with instructions for installation.

Important: EV SSL Certificates require the installation of the Primary Extended Validation Intermediate CA and Secondary Extended Validation Intermediate CA that corresponds to the certificate you purchased.

Requirements

Enrollment

To enroll for a VeriSign Extended Validation SSL Certificate, you will need the following information:

  • The desired validity period of your Extended Validation SSL Certificate (1 or 2 years)
  • The number of servers hosting a single domain (up to 5 servers or 20 with Managed PKI for SSL)
  • The server platform
  • The full registered organization name
  • The organizational unit (optional)
  • The jurisdiction where the organization is legally registered including, country, state or locality this must be included in your CSR (optional for Managed PKI for SSL)
  • Payment information and a billing contact (not applicable to Managed PKI for SSL)
  • The common name. This is the host + domain name such as “www.company.com” or “company.com”
  • An email where VeriSign can reach you to validate the information (not applicable to Managed PKI for SSL)
  • A CSR generated from the server you need to secure
  • An Organization Contact who is authorized by your organization to approve an EV certificate request and sign agreements on behalf of the organization (not applicable to Managed PKI for SSL)
  • Business street address (no P.O. boxes) 

Authentication and Verification

Before you can take full advantage of Extended Validation SSL, VeriSign must authenticate your organization based on Extended Validation standards. VeriSign must verify that your organization is legitimate, and is registered with the proper government authorities. Verification is the process of confirming the following:

  • The Organization is validly registered in the jurisdiction of incorporation
  • The Organization owns/has rights to use the domain name listed in the common name field of the Certificate Signing Request (CSR)
  • The Organization Contact works for the organization listed in the distinguished name and is authorized to sign the EV agreement on behalf of the organization
  • The address of the organization, or organization contact is a place of business of the organization
  • The Organization Contact is aware of and approves the certificate request and has agreed to VeriSign’s terms and conditions
  • The Technical Contact listed is authorized to receive the Digital ID

For more details, please see the VeriSign Extended Validation Authentication Guide.

Installation

For detailed step-by-step installation instructions, please view the corresponding product pages:

SSL Certificates with Extended Validation

Managed PKI for SSL with Extended Validation
Contact Us
Contact Support >>

Retail Acknowledgement of Agreement
Acknowledgement of Agreement for Managed PKI for SSL
Lawyer's Opinion Letter for Retail
Lawyer's Opinion Letter for Managed PKI for SSL
Extended Validation SSL FAQ
Buy New SSL Certificates
Renew SSL Certificate
Buy Additional SSL Certificates
VeriSign CA Certificates